09/05/2003 15:56 



PLB STOCKHOLM PB 0017033057687 



NR. 822 [303 



REMARKS 

The Examiner has maintained the rejection of the claims under 35 U.S,C. 102(e) 
in view of the reference to Barlow et al. [U S- Patent No. 6,038.551], 

The amended Claim 1 now submitted for consideration has been restricted by 
specifying that the sender creates the transaction message "independently of any 
connection to a communications network and without computer dialogue with a 
receiver". This further delineates the central concept of the invention which is 
the elimination of any possibility that any second or third party or their 
computer will compromise the integrity of the transaction message at any time 
during the process of its being created and electronically signed and sealed by 
the sender. Support for this added wording to Claim 1 is to be found on page 5, 
lines 6-8 of the original description [PCT WO 98/52151]. 

Reference has been made to col. 14 of Barlow et aL, the most nearly relevant 
passage being the description in col, 14, lines 42-58 of how a financial 
transaction is effected using a smart card and an automatic teller machine. Lines 
48-52 read: 'T^Jext, the IC card and the banking application running on the ATM 
exchange authentication information. The banking application then conducts a 
financial transaction through the API to the IC card." It is submitted that this 
describes prior art methods where there is back-and- forth interaction between 
the sender and the receiver [the bank's computer] during the creation of the 
transaction method and prior to its being electronically signed by the sender. 
Typically, conducting a financial transaction through the API [ Application 
Program Interface] to the IC card involves back and forth communication with a 
computer outside the sender's complete control This is illustrated by the flow 
chart shown in Figs. 7-10 of Barlow et al. where steps 158-162, steps 170-174 
and steps 180-1 86 all appear to involve back and forth interaction with a second 
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or third party computer during the creation of the signed transaction message. 
This is contrary to the concept of the invention as defined in the now amended 
main clainx 

It is respectfully submitted that the narrowing amendment to Claim 1 now 
makes the present invention patentably distinct over the cited prior art. 



Timothy Piatt 
Reg. No- 43,003 
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CLAIMS 




15 



20 



25 



(Currently amended) A method for performing elect^fonic trans- 
actions, in which a sender of transaction messages^ is assigned 
a smart card with an associated unique identity and a private 
key stored in the card in a protected manner, arid in which an 
associated public key is kept generally available, c h a r a c 
terisedin that in connection with anyelectronic transac- 
tion under the sender's own control, preferably through his own 
input of message information^ the sender r/independently of any 



connection to a communications network and without com] 



dialogue with a receiver, creates a transaction message, which 
contains information necessary for the transaction, and, in his 
smart card^ provides the created transaction message with his 
digital signature while using his o'wn private key for subse- 
quent output and transmission of t^e transaction message. 

2* (Original) A method as claime^in claim 1, characte 
r i s e d in that the transaction message contains informa- 
tion on sender, receiver^ amount and preferably a transac- 
tion serial number. / 

/ 

3. (Previously amended) /A method as claimed in claim 1 c h a 
rcacterised i^'' that the transaction message is cre- 
ated off-line, i.e. not connected to the communications net- 
work that is used for/the subsequent transmission of the 
transaction message. / 



iputer 



30 



35 



4. (Original) A method as claimed in claim 3, character 
i s e d in that the transaction message is created off-line, 

5. (Previously ^mended) A method as claimed in claim 1, char 
a c t e r i s ^^b d in that the Transaction message is created in 
the smart card. 



6. (Previously amended) A method as claimed in claim 5, c h a 
racterisedin that the transaction message is created 
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with the aid of software inserted in the smart card in advance 
and preferably also sender /information inserted in the card in 
advance , 



10 



15 




25 



30 



35 



7. (Previously amended) A rtethod as claimed in claim 5, c h a 
racterisedin that information required for the 
transaction message is input with the aid of input means 
arranged on the smart ckrd^ the card preferably being a so- 
called advanced smart card, 

8. (Previously amended) method as claimed in claim 1, c h 
aracterisedin (that information necessary for the 



transaction message is i 
card terminal. 

9, (Previously amended) 
racterisedint 



nput with the aid of a protected 



A method as claimed in claim 1, c h a 
lat information necessary for the 



transaction message is input with the aid of a separate card 
communication unit, the latter preferably also being a card 
activator . 



10. (Previously amended) A method as claimed in claim 1, c h a 
racterisedin that information necessary for the 
transaction message is ;.nput with the aid of a telecommunica- 
tions unit controlled by the smart card, especially a mobile 
telecommunications unit such as a mobile phone, 

11. (Previously amendedj) A method as claimed in claim l,c h a 
racterisedin 



that the transaction message contains 
sender information in tJhe form of at least one of the followi 



pieces of information: 



invoice number and an : 



ng 



a card number, a cash card number, a 



charge card number, a credit card number , an account number^ an 



D number. 



12. (Previously amended) A method as claimed in claim 1, c h a 
racterised irJ that the transaction message contains 
receiver information in the form of at least one of the follow- 
ing pieces of information: a card number^ a cash card number, a 
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charge card number, a credit card number, an account /number , an 
invoice number and an ID number, 



10 



13. (Previously amended) A method as claimed /in claim 1, c h a 
racterisedin that the signed transaction message is 
sent to a card or account administrator regarding the sender or 
receiver, that the digital signature of t^e transaction message 
is authenticated by using the public ke/, which is assigned to 
the one who is identified as sender by the transmitted transac- 
tion message, and that in case of authenticity, the receiver is 
credited with the transaction amourit by a clearing process. 



15 




25 



30 



14. (Original) A method as claimed in claim 13, c h a r a 



c " 



t e r i 



L s e d in that the sign^ed transaction message 



IS 



first sent to the receiver, who optionally after his own 
checking of the digital signature of the message forwards the 
signed transaction message/to said card or account administra- 
tor* 

15. (Previously amende^^) A method as claimed in claim I, c h a 
racterisedin that the signed transaction message is 
encrypted by using a/public key belonging to the addressee, to 
whom the transaction message is sent, that the encrypted, 
signed transactioiy message is sent to the addressee, that the 
addressee by using his private key decrypts the signed transac- 
tion message, tl^at the digital signature of the transaction 
message is authenticated by using the public key which is as- 
signed to the^one who is identified as sender by the transmit- 



ted transaction message, and that the receiver, in case of au- 
thenticity, 
ing process/ 



thenticity, As credited with the transaction amount by a dear- 
s' 



35 



16* (Orig/nal) A method as claimed in claim 15, charac- 
ter i/s e d in that the addressee is the receiver, that the 
receiver, after decryption, sends the signed transaction mes- 
sage ^to a card or account administrator, whereupon said authen- 
ion takes place. 
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17, (Previously amended) A method as claimed in claim \!, c h a 
racterisedin that the signed transaction message is 
encrypted by using the sender's public key and is provided with 
sender information and is then sent to a card or account admin- 
5 istrator, who has the sender's private key and who pteferably 
has issued the user's smart card, that said adminis^ratctr de- 
crypts the received encrypted message by using say^ private 
key, that authentication of the digital signature? of the de- 
crypted transaction message takes place by usin^ the public 
10 key, which is assigned to the one who is identified as sender 
by the transmitted transaction message, and that the receiver^ 
in case of authenticity, is credited with th^fe transaction 
amount by a clearing process 

15 18. (Previously amended) A method as c^/4imed in claim 1, c h 
aracterisedin that the signed transaction message 
is sent non-encrypted, especially via/ a public communications 
network, such as the Internet or a telecommunications net- 
work, 

20 

19, (Previously amended) A met^bd as claimed in claim 1^ c h a 
racterised, in that ^the signed transaction message is 
\ I sent by e-mail, 

25 20. (Original) A method as/claimed in any one of claims 1-18, 
characterise/din that the signed transaction mes- 
sage is sent via a mobile telephone network, especially by us- 
ing a so-called SMS service. 

30 21 - (Original ) A smart card for carrying out electronic trans- 
actions, comprisi4ig means for storing card identification in- 
formation, means for protected storing of a private key, means 
for storing an asymmetrical algorithm, means for input of 
transaction^inf ormation into the card, processor means for cre- 
ating in the card a transaction message based on input transac- 
tion information, such as information on amount and receiver, 
and optionally information stored in the card, such as informa- 
tion /6n sender and preferably a serial number, and for provid- 



35 
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25 
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35 



ing the transaction meisage with a digital signature on the ba- 
sis of said private key and said asymmetrical algorithm^ and 
means for output of th'e signed transaction message. 



22. (Previously amended 
racterisedi 
type. 



A card as claimed in claim 21, c h a 
that the card is of a so-called advanced 



23 . (Original) A combination of a smart card and a user- 
controlled communicatfion unitr which is arranged for communi- 
cation with the smart' card and with which the card is adapted 
to be combined with a view to producing an electronic transac- 
tion message, the card comprising means for protected storing 
of a private key, means for storing an asymmetrical algorithm 
and processor means :for providing a created transaction mes- 
sage with a digital signature based on said private key and 
said algorithm, and said communication unit comprising means 
for input of transaction information, and means being arranged 
in the communication unit and/or in the card for creating said 
transaction message 

24 . (Original) A combination as claimed in claim 23. c h a r a c 
terisedin that the communication unit is a mobile tele- 
communication device. 



25. (Original) a combjination as claimed in claim 23, c h a r a 
cterisedin that the communication unit is a combined 
card activator and Information inputter/processor . 

26, (Original) Use of a smart card with a private key stored 
therein for providing, independently of the communications net- 
transaction message provided with a digital 

the private key. 



work, an electronic 
signature based on 



27. (Previously added) A method as claimed in claim 2, c h a r a 
cterisedin ithat the transaction message is created off- 
line, i.e. not connected to the communications network that is 
issued for the subsequent transmission of the transaction mes- 
sage . 
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26, (Previously added) A method as claimed in claim 6, c h a r a 
cterisedin t.hsLy information required for the transac- 
tion message is inpi^with the aid of input means arranged on 
the smart card, tKe card preferably being a so-called advanced 
smart card. 

29. (Previously added) A method as claimed in claim 27, char 
ac^erisedin that the transaction message is created 
o^^-line - 



